Memory Buffer Vulnerability in IGSS Definition by Schneider Electric
CVE-2021-22761
7.8HIGH
Key Information:
- Vendor
Schneider Electric
- Vendor
- CVE Published:
- 11 June 2021
What is CVE-2021-22761?
A vulnerability exists in IGSS Definition (Def.exe) versions prior to V15.0.0.21140 that can be exploited when an attacker imports a specially crafted CGF file. This vulnerability arises from insufficient length checks on user-supplied data, which can lead to potential information disclosure and unauthorized remote code execution.
Affected Version(s)
IGSS Definition (Def.exe) V15.0.0.21140 and prior IGSS Definition (Def.exe) V15.0.0.21140 and prior